Re: RE: Messenger services

["R. DuFresne" <dufresne () sysinfo com>]

darkstar:~$ nslookup  login.icq.com
Server:  fatb.celito.net
Address:  208.1.60.15

Non-authoritative answer:
Name:    login.icq.com
Addresses:  205.188.3.176, 205.188.5.204, 205.188.5.208, 205.188.3.160


always be aware, a FQDN might well point to a server cluster of IP's.  So
firewall rules need to accomodate all the addresses in question.

So, ICQ might well be as easy to block from a network as AIM, meaning, one
blocks all the login servers flat and worries not about specific ports at
all.

Thanks,

Ron DuFresne

On Thu, 28 Dec 2000, Paul Hanson wrote:

> my $.02
>
> ICQ uses login.icq.com (205.188.5.204) to verify each user's credentials
> (etc, etc).  As for the ports, mine is using 5190 at home, 2xxx-something at
> work, so blocking ports may not be as effective IMO.  I also ran the
> "auto-configure" option, it set my port to 31875. (but the login.icq.com
> remained the same).
>
> It's dynamic crap stems from a couple of settings in the Owner Preferences
> where the user's can select whether or not they are behind a firewall,
> and/or using a proxy.  It's here that I think it sets its ports for
> connection after it authenticates.
>
> -Paul
>
>
> _______________________________________________
> firewall-wizards mailing list
> firewall-wizards () nfr com
> http://www.nfr.com/mailman/listinfo/firewall-wizards

-- 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
        admin & senior consultant:  darkstar.sysinfo.com
                  http://darkstar.sysinfo.com

"Cutting the space budget really restores my faith in humanity.  It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation."
                -- Johnny Hart

testing, only testing, and damn good at it too!


_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards